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BACKGROUND OF THE INVENTION 

[0001] Email continues to be the fastest growing communication medium for businesses. 
Using email to transmit sensitive information, however, poses many security issues. 
Consequently, many business have resorted to perimeter defenses such as firewalls, virtual 
private networks (VPNs), and intrusion detection systems (IDSs). While these defenses help 
keep out individuals with malicious intentions, they do not address an obvious security 
vulnerability: the loss of information through unauthorized forwarding of email. 

[0002] Accordingly, a system and method is needed to selectively prevent forwarding of 
email communications. The architecture should provide sufficient flexibility to accommodate a 
variety of email clients and should not require any plugins or other client software installations. 
Additionally, the solution should be easily deployed in large-scale environments. 

SUMMARY OF THE INVENTION 

[0003] The present invention is directed to a system and method for detecting and 
selectively preventing the forwarding of an electronic message, wherein the message is sent by a 
sender to a recipient, and wherein the message has a message body and a message header. The 
system comprises a wireless gateway in communication with the client; a message database in 
communication with the gateway for storing a first message identifier associated with the 
electronic message; and a search module in communication with the message database for 
determining whether a second message identifier associated with a forwarded electronic message 
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is contained in the message database and, if the message database contains the second message 
identifier, preventing forwarding of the forwarded message. 

DESCRIPTION OF THE FIGURES 

[0004] For the present invention to be understood clearly and readily practiced, the 
present invention will be described in conjunction with the following figures, wherein: 

[0005] FIG. 1 is a simplified block diagram of an exemplary environment for operation 
of one embodiment of the present invention; 
s s [0006] FIG. 2 is a simplified block diagram of an exemplary environment for operation 

g of one embodiment of the present invention; 

jg [0007] FIG. 3 is a diagram illustrating a message window displayed by an exemplary 

%fl electronic mail system; and 

:JUi 

s [0008] FIG. 4 is a flow diagram of a process to prevent unauthorized forwarding of email 

messages according to one embodiment of the present invention. 

iT'"1 

P DETAILED DESCRIPTION OF THE INVENTION 

[0009] It is to be understood that the figures and descriptions of the present invention 
have been simplified to illustrate elements that are relevant for a clear understanding of the 
present invention while eliminating, for purposes of clarity, other elements. For example, certain 
network details and modules of certain messaging platforms are not described herein. Those of 
ordinary skill in the art will recognize, however, that these and other elements may be desirable 
in a typical communications network. A discussion of such elements is not provided because 
such elements are well known in the art and because they do not facilitate a better understanding 
of the present invention. 



2 



PATENT 
010569 

[0010] The present invention relates to an interactive wireless communications system in 
which a sender of an electronic mail message can limit, or even prevent, recipients of that 
message from forwarding the message to other mail clients. The present invention employs a 
specially configured gateway to control distribution of email among all applications and devices 
that communicate with the gateway. 

[0011] FIG. 1 is a simplified schematic diagram of a system 10, according to one 
embodiment of the present invention. The system 10 includes a wireless device 1 10, a mobile 
switching center (MSC) 1 13, a wireless gateway 1 15, an intermediate network 128 (such as the 
Internet), a foreign network 1 16, a foreign mail server 108, and a foreign client 1 12. Wireless 
device 110 may be any wireless digital processor capable of accessing the Internet such as, for 
example, a mobile telephone, a personal digital assistant, or a pager such as those sold by 
Research in Motion (RIM) Inc. 

[0012] Mobile switching center 1 13 may comprise any one of a number of known 
communications switching devices, including those commonly used and known in the art for 
providing either digital or analog cellular telephone service to a plurality of wireless devices 110. 
The mobile switching center 113 performs switching functions to permit communication 
between the intermediate network 128 and the wireless device 12. Although only one mobile 
switching center 1 13 is shown, it will be understood that system 10 likely includes many more. 

[0013] The wireless gateway 115 refers to a software infrastructure that connects the 
wireless domain (i.e. wireless device 110 and MSC 1 13) with the intermediate network 128. 
Each network in FIG. 1 may be running a different protocol. Message transfer among users that 
communicate with different protocols typically must be routed through a network gateway 
processor that transforms the message from the foreign protocol to the native protocol. Thus, 
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gateways that are used for message transfer among interconnected networks, such as over what is 
commonly referred to as the "Internet," accept e-mail messages from other gateways and from 
connected networks. 

[0014] In that regard, wireless gateway 115 carries out protocol conversions between 
WAP communication protocols and the Internet communication protocols (e.g. HTTP, TCP/IP). 
The underlying protocol for packaging and decoding messages sent by wireless device 1 10 and 
received by gateway 1 15 is Simple Mail Transport Protocol (SMTP). The gateway 1 15 also 
performs content encoding, such as encoding of WML into binary format and compilation of 
WMLScripts. Gateway 1 15 may reside within the wireless carrier's network but may also reside 
within a corporate business environment. 

[0015] FIG. 2 shows a more detailed schematic of a wireless network 100, and especially 
gateway 1 15, according to one embodiment of the present invention. Network 100 includes 
wireless device 110, MSC 113, Nrouters 30 and 32, protocol handlers 40 and 42, a user 
database 50, a message store 52, and an Internet mail router 60. Wireless network 100 may use, 
for example, Mobitex® technology of the Cingular Interactive Intelligent Wireless Network 
service provided by Cingular Wireless. The Mobitex® network is a two-way wireless data 
service that can be connected with other complimentary networks. A wireless data service such 
as the Mobitex® network includes a hierarchy of communications systems that can provide 
nationwide wireless service through a network of base stations and local switches under the 
control of higher order regional switches or exchanges. 

[0016] The components of gateway 115 may be connected over an internal network 12, 
14, and 16, which may be a local area network (LAN). One or more wireless network exchanges 
such as Mobitex® regional switches 1 1 1 and 1 13, which may reside at separate locations, 
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communicate with gateway 115 through Nrouters 30 and 32. The communication between 
regional switch 113 and the Nrouters may use, for example, an X.25 protocol. Nrouters 30 
and 32, in turn, communicate with protocol handlers 40 and 42 over internal network 12 using, 
for example, X-sockets. 

[0017] Protocol handlers 40, 42 use data from user database machine 50 to communicate 
externally to gateway 1 15 via network 16. An Internet mail router 60 is connected to internal 
network 16 and handles inbound and outbound communications traffic with an external network 
such as the Internet 128, as well as X-sockets traffic. If necessary, a separate X-sockets machine 
p and backup machine (not shown) can be added. 

hi [0018] Protocol handlers 40 and 42 process information contained in user database 

machines, such as user database 50. Additionally, each protocol handler maintains a database 
^ cache, i.e., a small, fast memory holding recently accessed data, to speed up internal network 
j^j communications and to limit database access requests over the LAN. The protocols handled by 
m protocol handlers 40, 42 specify that message storage and internal email access may be handled 
jl by the UNIX standard Network File System (NFS) distributed file system from SUNSOFT, 
which allows data to be shared across the network regardless of the protocol. 

[0019] Message store 52 is responsible for, among other things, delivering a mail 
message to a recipient or receiving a mail message from a sender. Thus, message store 52 may 
contain various routing and delivery program modules necessary to ensure that a mail message is 
either delivered to a recipient, or forwarded to other components for delivery to a recipient. 

[0020] According to an embodiment of the present invention, message store 52 includes 
a module to control mail messages sent from wireless network 1 14. Such a module may be 
implemented using hardware or software. Those skilled in the art will appreciate, however, that 
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the process described below may be implemented at any level, ranging from hardware to 
application software and in any appropriate physical location. For example, the module may be 
implemented as software code to be executed by the message store 52 using any suitable 
computer language such as, for example, microcode, and may be stored in, for example, an 
electrically erasable programmable read only memory (EEPROM), or can be configured into the 
logic of the prepaid server 18. According to another embodiment, the module may be 
implemented as software code to be executed by the prepaid server 18 using any suitable 
computer language such as, for example, Java, Perl, C or C++ using, for example, conventional 
or object-oriented techniques. The software code may be stored as a series of instructions or 
commands on a computer readable medium, such as random access memory (RAM), read only 
memory (ROM), a magnetic medium such as a hard-drive or a floppy disk, or an optical medium 
such as CD-ROM. The module may also be a computer, such as a workstation or a personal 
computer, a microprocessor, a network server, a Java virtual machine, or an application specific 
integrated circuit, using any suitable type of computer instruction. 

[0021] In many instances, mail messages and other information that are routed through 
wireless network 100 may be thought of as a collection of properties. If each mail message is 
conceptually thought of as a collection of various properties, then the properties may be stored 
and manipulated. For example, message store 52 may comprise means for storing information so 
that it can be retrieved later. In one embodiment, message store 52 comprises a database engine 
that will take properties and store them. Such an approach may be highly useful, for example, for 
storing either temporarily or on a more permanent basis various mail and other information. 

[0022] Message store 52 may include a database, in the traditional sense of the word, or 
may be simply locations either in memory or on a mass storage device where information is 
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stored until it needs to be retrieved. According to an embodiment, one or more program modules 
in message store 52 act as a data store manager that provides an interface to the storage medium. 
A component wishing to store information in message store 52 would submit the information to 
the appropriate program module and the program module would save the information to the 
storage medium. Information may be retrieved in a similar manner. According to an 
embodiment, such a data store program module is adapted to store message identifiers. 

[0023] According to one embodiment of the present invention, gateway 1 15 can 
implement a set of policies to prevent unauthorized forwarding of email messages that pass 
through gateway 115. For example, users can establish a default policy that is applied to email 
messages. Alternatively, users could request that certain policies be applied on a per-message 
basis. Additionally, these policies could be changed at gateway 115 even after a message has 
been delivered. By implementing the present invention at gateway 115, the non-forwarding 
feature is completely transparent to users and requires no special plug-ins or other software to be 
deployed on individual client devices. Additionally, these features may be entirely user-initiated 
and user-controlled. 

[0024] According to one embodiment, users can specify policies on a per-message basis 
by embedding keywords or commands in the body of the messages. These commands may 
generate mail headers that, in turn, instruct gateway 1 15 to control distribution of the associated 
message. According to such an embodiment, the keywords may be implemented as dot 
commands. Dot commands take the form of a line beginning with a period, followed by one or 
more letters. Where the message can be placed in the body of the text message itself, it may be 
recognized by any interactive wireless system protocol. The text message and related commands 
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may be created and specified, e.g., using any Internet-compatible email service such as Microsoft 
Outlook. 

[0025] FIG. 3 illustrates an embodiment of a user interface 10 with which users can 
activate the non-forwarding feature. User interface 10 includes a new message window 12 and a 
message options window 14 according to an embodiment of the present invention. New message 
window 12 allows a user to compose a new message 16 in a conventional manner. Options 
window 14 allows a sender to provide certain instructions to the system 10 in connection with 
the delivery of the message 16 composed in message window 12. To display the options 
window 14, the sender typically selects Options 18 (not shown) from a View menu 20. The new 
message window 12 and options window 14 represent Microsoft Outlook 2000 windows for 
illustration purposes. Those skilled in the art will recognize, however, that these examples do 
not limit the invention to a particular electronic mail system, but that the invention is applicable 
to any electronic mail system. 

[0026] According to such an embodiment, the sender may block forwarding of the 
message 16 by selecting a "do not forward" option 22. According to such an embodiment, the 
sender may activate the "do not forward" option under, for example, the voting and tracking 
options section of message options window 14. The "do not forward" option 22 must be 
checked before the message is sent to activate the anti-forwarding functionality. Once activated, 
recipients of message 16 will be permitted to read message 16 but not forward it through 
gateway 115. According to another embodiment, certain controls necessary to activate the 
present invention could be located in the user's email toolbar. 

[0027] According to one embodiment of the present invention, gateway 115 consults a 
database of blacklisted message identifiers to determine whether the sender had requested the 
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non-forwarding feature. In other words, gateway 115 could be configured to look up the 
message identifier of a forwarded email message, and reject the forwarded message if the 
blacklist database indicates that the message identifier has an active non-forwarding option. 
According to such an embodiment, a message identifier may be, for example, an identification 
string derived from the SMTP header of the message itself that uniquely identifies the message. 

[0028] FIG. 4 is a simplified flow diagram that illustrates a process 200 for controlling 
the distribution of electronic mail according to an embodiment of the present invention. FIG. 4 
is entered at step 210, and in step 212, a wireless subscriber (hereafter "the sender") uses 
U wireless device 1 1 0 to compose and transmit an electronic message 1 6 in a conventional manner. 
q Message 16 is sent from the wireless device 1 10 to gateway 1 15 using wireless session protocols, 
: $ ; essentially a binary version of HTTP. In step 2 1 4, gateway 1 1 5 determines whether the sender 
m has requested that message 1 6 not be forwarded. If so, in step 216, gateway 1 1 5 stores the 

l : 5 

■ message identifier associated with message 1 6 in a storage medium 218. Message 1 6 then works 
its way through system 1 0, as shown in FIG. 1 , in a manner well know to those skilled in the art 

g until it reaches client device 1 12 of the addressee or message recipient in step 220. 

[0029] If the recipient forwards message 1 6 to a third party in step 222, gateway 1 1 5 will 
interrupt the process and read the message identifier associated with message 16 and, in step 224, 
search storage medium 218 for a matching entry. If, in step 226, message 16 has an active non- 
forwarding request (i.e., gateway 115 finds a matching entry in storage medium 118), 
gateway 1 15 blocks forwarding of message 16 in step 228 and, optionally, notifies the sender of 
the forwarded message in step 230 before proceeding to an end in step 232. If no matching entry 
is found in storage medium 118, gateway 115 routes message 16 in a conventional manner in 
step 234. 
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[0030] The present invention has been described with reference to the SMTP mail 
protocol and the wireless application protocol (WAP) standards as a basis for transmitting 
electronic mail from a wireless device. It will be recognized, however, that these standards are 
used by way of example only, and that the concepts utilized here are equally applicable in other 
environments that do not operate in accordance with these particular standards. 

[0031] It should also be understood that the invention is not limited by the foregoing 
description, but embraces all such alterations, modifications, and variations in accordance with 
the spirit and scope of the appended claims. 
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